Search Results

How to access? When you try to connecto to a Windows machine by using Soffid ESSO, you need to enter your user and password in the Windows login page.  If the user does not exists in this machine, depending on the attribute "Create local accounts when there ...

Introduction Soffid ESSO is a full Enterprise Single Sign on solution. Here you can find the details about the ESSO +3.5.0-enterprise installation. Supported platforms Soffid ESSO supports Windows XP or later workstations. Windows Interactive installatio...

How to access? When you try to connect to a Linux machine using Soffid ESSO, you will need to enter your username and password on the Linux login page. If the user does not exists in this machine, depending on the attribute "Create local accounts when there ...

What is Soffid Authenticator? Soffid provides an application to be used with Soffid Identity Provider to obtain SSO and MFA for any web or legacy application. It supports one-click push authentication for login. Please note that for push authentication to w...

How to access? For domain member hosts, ESSO will remove all existing local accounts except for those with a dependand service. So, in order to access with administrator privileges, user must use a domain account with local administrator privilege, or either ...

Introduction Active Directory Back Channel refers to a mechanism that allows Soffid to synchronize user information with an external Active Directory (AD) server in real-time or near real-time (Password synchronizer). This synchronization ensures that both So...

Introduction Soffid provides a collection of add-ons that can be installed to add functionalities to the Soffid Console. There are several Addons available to be installed to add functionalities to the Soffid Console. These add-ons can be found at: http://ww...

What is WSSO for legacy applications? Nowadays, it's very common to have a mix of different technologies and products to deliver information to customers, providers or internal users. With Soffid IAM you can get the same user and password for every applicati...

Installation In order to install Web Single Sign on, the following components must be installed and running Soffid IAM Console version 1.2.1 or later Soffid IAM Synchronization server 1.2.1 or later Soffid SAML Identity Provider version 1.0.0 o...

Web Single Sign On acts introducing credentials to the underlying web application on behalf of the user. To perform its job, WSSO can: Identify the user when needed Modify pages generated by the web application in order to adapt them to the single si...

The system is configured using Apache configuration files, plus some ECMA script files that can be located anywhere you want. If you are using Ubuntu Server, it is necessary remove apache_mpm_worker module and install apache_mpm_prefork one. In general, Soff...

Soffid Federation is based on shibboleth open source project. Actually the installation is a mixed procedure between Shibboleth installation and Soffid configuration. In the future Shibboleth installation will be integrated on Soffid installation in order to a...

Configuring Soffid WSSO The system is configured using Apache configuration files, plus some ECMA script files that can be located anywhere you want. In general, Soffid WSSO acts intercepting and modifying any request made to Apache. This request can be proc...

Scripting language The scripting language is fully compatible with ECMAScript 3rd edition plus a small set of new objects and methods. Before running the script, Soffid WSSO will create some global variables referring to the request of the user agent and con...

Add the following settings to Apache: <Location /> ShibRequireSession off ShibRequestSetting applicationId drupal AuthType shibboleth Require shibboleth </Location> SoffidOnLoadScript .* .* 60000 /etc/apache2/soffid/drupal-login.js SoffidPostData...

The following attributes must be added to apache configuration <Location /> ShibRequestSetting applicationId forum ShibRequireSession off AuthType shibboleth Require shibboleth </Location> <Location /ucp.php> Shi...

What is Soffid LDAP? Soffid LDAP is a complete LDAP Server based on OpenLDAP. It is always distributed as a docker container. The proposed system architecture is as follows: The SoffidLDAP is not directly using  Soffid database. Instead, it is using its ow...

Connecting to the LDAP  The Soffid LDAP accepts the usual way to connect to the LDAP service using the distinguished name and password for the user. Additionally, one can use the uid attribute to login. Then for the user: dn: cn=user,ou=test,dc=soff...

The password authentication process is redesigned to allow users to connect to Soffid LDAP using their internally stored password, or a password trusted by Soffid. The first attempt is to check the password against the local userPassword attribute. If i...

The communication channel from Soffid LDAP to Soffid sync server is configured by the Soffid overlay. The overlay configuration object looks like this: ## Soffid overlaydn: olcOverlay=soffid,olcDatabase={1}mdb,cn=configolcOverlay: soffidobjectClass: olc...